IAM Administrator Roles

Identity and Access Management (IAM) administrator roles in OPERA Cloud Identity Management provide capabilities in OPERA Cloud Identity Management portal for managing users, groups, user group memberships and managing Oracle support access.

IAM administrator roles can be used for controlling access to capabilities only within OPERA Cloud Identity Management Portal.

The three IAM administrator roles available in OPERA Cloud Identity Management are as follows:

• IAMADMIN

• IAMUSERMANAGER

• IAMHELPDESK

IAM administrator roles are always associated to an enterprise, chain, or a property where scope of user and group data can be managed by members of that IAM. The Administrator role in the OPERA Cloud Identity Management Portal is always based on the associated enterprise, chain, or property.

Table 2-1 Administration Capabilities in OPERA Cloud Identity Management Portal

Administrator Role Name	View User	Create User and Delete User	Activate/ Deactivate User and Edit User	Unlock User/ Reset Factors/ Reset Password/ Resend Invitation	Manage User Group Membership	View Groups	Create Custom Groups and Delete Custom Groups	Manage Group User Membership	Manage Admin Roles	Manage Oracle User Access
IAMADMIN	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes	Yes
IAMUSERMANAGER	Yes	No	Yes	Yes	Yes	Yes	No	Yes	No	No
IAMHELPDESK	Yes	No	No	Yes	No	Yes	No	No	No	No

Note:

The IAMADMIN Administrator Role is automatically assigned for the CHAIN-ADMIN or PROPERTY-ADMIN group member for that respective chain or property.